This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf3aefd7-144a-4210-8532-a7b6e0533dd6.roa File: bf3aefd7-144a-4210-8532-a7b6e0533dd6.roa (raw, json) Hash identifier: CQQ82GDqsuJi8x3xCw3r50Vnp2KgZwMA0yZ6vlp/uqQ= Subject key identifier: 71:02:06:79:2F:CF:C7:B6:9F:0F:EB:36:19:E5:4C:E7:BE:EF:C2:0B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 186208224038711E354C95D96432CE8E57E6CD7D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf3aefd7-144a-4210-8532-a7b6e0533dd6.roa Signing time: Sat 15 Nov 2025 05:10:32 +0000 ROA not before: Sat 15 Nov 2025 05:10:32 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e700::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:62:08:22:40:38:71:1e:35:4c:95:d9:64:32:ce:8e:57:e6:cd:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 15 05:10:32 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=208a4329d71798936f227baef78bdba30aa42cc9f87695298529dcddf3e86259, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7f:7a:3e:84:dd:80:1d:21:43:42:9d:08:65: 74:9b:2e:91:f6:b8:16:f7:1f:65:4b:06:4c:9d:f7: 11:14:04:50:82:19:12:f0:d4:49:29:3e:e9:b8:f6: f7:15:25:b7:3d:63:f3:3a:ba:87:0b:90:d0:06:1f: ad:05:d0:fe:c7:d6:54:3a:0b:74:9a:3a:f4:41:83: f0:55:b6:5f:49:24:99:d2:7c:3a:2a:93:6f:f7:bb: af:22:09:55:26:a5:77:9a:ab:ee:07:14:c0:8f:2e: e2:14:82:ca:31:00:fd:6e:e4:b1:9a:ee:bd:6c:40: 14:5e:ce:58:ab:ba:15:61:78:47:d0:e0:7c:f7:8f: 02:d2:9c:65:8d:a4:2b:59:0e:d1:0e:9d:6f:75:3d: 02:1d:ea:fd:80:e2:01:a6:e0:e5:32:36:5f:80:78: 32:11:54:c6:ef:bd:24:70:6a:c4:53:6a:86:91:66: a5:7e:0b:83:9c:4d:b5:5c:6a:6b:a8:22:df:bc:35: c6:ac:5c:21:a4:8f:5f:a6:1b:ae:90:f4:e6:7f:34: 10:5c:5b:2a:ea:62:a4:5a:cb:9c:0e:76:8a:65:29: d1:23:6f:bf:16:9e:92:1d:64:67:69:cb:36:f6:c0: 37:71:ed:86:d4:9d:df:b8:7c:01:9b:d1:ab:5e:fa: fc:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:02:06:79:2F:CF:C7:B6:9F:0F:EB:36:19:E5:4C:E7:BE:EF:C2:0B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf3aefd7-144a-4210-8532-a7b6e0533dd6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e700::/42 Signature Algorithm: sha256WithRSAEncryption 9a:7e:60:dd:07:8d:8a:08:22:ba:44:a8:51:b4:d1:55:d2:77: 4a:6f:27:70:87:51:8c:3d:72:32:fc:5c:8a:e9:86:24:7e:30: 85:02:b1:44:0d:85:05:4d:e3:e8:c0:dd:f2:0a:22:63:64:bb: 93:40:5e:d5:3d:23:cd:9c:89:a5:77:fd:fd:ce:d4:d4:35:48: 0a:05:fa:61:fa:b2:c0:6a:9b:6f:2d:51:c3:52:3b:dc:78:34: de:e7:88:ea:57:3f:db:c6:da:8e:9a:7a:4b:9c:61:2c:de:10: 01:08:df:2f:e9:4e:fc:f8:0e:a5:0f:5e:72:86:5a:04:a5:b6: 8f:7c:06:a6:cc:b1:16:33:86:5d:03:16:02:f7:f7:5b:ff:b0: 56:d1:12:93:06:d2:f6:7b:0b:fd:51:f2:22:26:7e:48:7c:53: f3:de:a8:9d:ef:b6:f6:10:ba:c3:71:0e:2a:8b:3a:6b:b2:85: 64:31:53:85:f8:c3:b8:3a:1a:f2:90:23:ba:ff:7c:f9:80:bc: 73:6b:b6:29:c5:72:9d:62:71:92:4f:e1:6c:01:02:a1:3e:e7: 43:28:70:3f:93:dc:d5:dd:3c:dc:b1:5f:44:e9:58:fe:ab:33: f0:d0:66:55:db:3e:f1:e7:ba:f1:6b:02:17:8e:a4:8d:5c:2f: 59:3e:ff:1d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGGIIIkA4cR41TJXZZDLOjlfmzX0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMTE1MDUxMDMyWhcNMjUxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMDhhNDMyOWQ3MTc5ODkzNmYyMjdiYWVmNzhiZGJhMzBh YTQyY2M5Zjg3Njk1Mjk4NTI5ZGNkZGYzZTg2MjU5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+f3o+hN2AHSFDQp0IZXSbLpH2uBb3H2VLBkyd9xEUBFCC GRLw1EkpPum49vcVJbc9Y/M6uocLkNAGH60F0P7H1lQ6C3SaOvRBg/BVtl9JJJnS fDoqk2/3u68iCVUmpXeaq+4HFMCPLuIUgsoxAP1u5LGa7r1sQBRezliruhVheEfQ 4Hz3jwLSnGWNpCtZDtEOnW91PQId6v2A4gGm4OUyNl+AeDIRVMbvvSRwasRTaoaR ZqV+C4OcTbVcamuoIt+8NcasXCGkj1+mG66Q9OZ/NBBcWyrqYqRay5wOdoplKdEj b78WnpIdZGdpyzb2wDdx7YbUnd+4fAGb0ate+vzvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcQIGeS/Px7afD+s2GeVM577vwgswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2JmM2FlZmQ3LTE0NGEtNDIxMC04NTMyLWE3YjZlMDUzM2RkNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD75wAwDQYJKoZIhvcNAQELBQADggEBAJp+YN0HjYoIIrpEqFG00VXS d0pvJ3CHUYw9cjL8XIrphiR+MIUCsUQNhQVN4+jA3fIKImNku5NAXtU9I82ciaV3 /f3O1NQ1SAoF+mH6ssBqm28tUcNSO9x4NN7niOpXP9vG2o6aekucYSzeEAEI3y/p Tvz4DqUPXnKGWgSlto98BqbMsRYzhl0DFgL391v/sFbREpMG0vZ7C/1R8iImfkh8 U/PeqJ3vtvYQusNxDiqLOmuyhWQxU4X4w7g6GvKQI7r/fPmAvHNrtinFcp1icZJP 4WwBAqE+50MocD+T3NXdPNyxX0TpWP6rM/DQZlXbPvHnuvFrAheOpI1cL1k+/x0= -----END CERTIFICATE-----Generated at Sat Dec 6 10:28:03 2025 by rpki-client